rpm package

suse/kernel-default&distro=SUSE Linux Enterprise High Availability Extension 12 SP2

pkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20High%20Availability%20Extension%2012%20SP2

Vulnerabilities (408)

CVE	Sev	CVSS	Affected versions	Fixed in	Published	Description
CVE-2018-1068		—	< 4.4.120-92.70.1	4.4.120-92.70.1	Mar 16, 2018	A flaw was found in the Linux 4.x kernel's implementation of 32-bit syscall interface for bridging. This allowed a privileged user to arbitrarily write to a limited range of kernel memory.
CVE-2018-8087		—	< 4.4.120-92.70.1	4.4.120-92.70.1	Mar 13, 2018	Memory leak in the hwsim_new_radio_nl function in drivers/net/wireless/mac80211_hwsim.c in the Linux kernel through 4.15.9 allows local users to cause a denial of service (memory consumption) by triggering an out-of-array error case.
CVE-2018-7757		—	< 4.4.121-92.95.1	4.4.121-92.95.1	Mar 8, 2018	Memory leak in the sas_smp_get_phy_events function in drivers/scsi/libsas/sas_expander.c in the Linux kernel through 4.15.7 allows local users to cause a denial of service (memory consumption) via many read accesses to files in the /sys/class/sas_phy directory, as demonstrated by
CVE-2017-18208		—	< 4.4.120-92.70.1	4.4.120-92.70.1	Mar 1, 2018	The madvise_willneed function in mm/madvise.c in the Linux kernel before 4.14.4 allows local users to cause a denial of service (infinite loop) by triggering use of MADVISE_WILLNEED for a DAX mapping.
CVE-2017-18204		—	< 4.4.121-92.146.1	4.4.121-92.146.1	Feb 27, 2018	The ocfs2_setattr function in fs/ocfs2/file.c in the Linux kernel before 4.14.2 allows local users to cause a denial of service (deadlock) via DIO requests.
CVE-2018-7480		—	< 4.4.121-92.95.1	4.4.121-92.95.1	Feb 25, 2018	The blkcg_init_queue function in block/blk-cgroup.c in the Linux kernel before 4.11 allows local users to cause a denial of service (double free) or possibly have unspecified other impact by triggering a creation failure.
CVE-2017-18174		—	< 4.4.121-92.109.2	4.4.121-92.109.2	Feb 11, 2018	In the Linux kernel before 4.7, the amd_gpio_remove function in drivers/pinctrl/pinctrl-amd.c calls the pinctrl_unregister function, leading to a double free.
CVE-2018-1000026		—	< 4.4.120-92.70.1	4.4.120-92.70.1	Feb 9, 2018	Linux Linux kernel version at least v4.8 onwards, probably well before contains a Insufficient input validation vulnerability in bnx2x network card driver that can result in DoS: Network card firmware assertion takes card off-line. This attack appear to be exploitable via An atta
CVE-2017-16913		—	< 4.4.120-92.70.1	4.4.120-92.70.1	Jan 31, 2018	The "stub_recv_cmd_submit()" function (drivers/usb/usbip/stub_rx.c) in the Linux Kernel before version 4.14.8, 4.9.71, and 4.4.114 when handling CMD_SUBMIT packets allows attackers to cause a denial of service (arbitrary memory allocation) via a specially crafted USB over IP pack
CVE-2017-16912		—	< 4.4.120-92.70.1	4.4.120-92.70.1	Jan 31, 2018	The "get_pipe()" function (drivers/usb/usbip/stub_rx.c) in the Linux Kernel before version 4.14.8, 4.9.71, and 4.4.114 allows attackers to cause a denial of service (out-of-bounds read) via a specially crafted USB over IP packet.
CVE-2018-1000004		—	< 4.4.114-92.64.1	4.4.114-92.64.1	Jan 16, 2018	In the Linux kernel 4.12, 3.10, 2.6 and possibly earlier versions a race condition vulnerability exists in the sound system, this can lead to a deadlock and denial of service condition.
CVE-2018-5333		—	< 4.4.114-92.64.1	4.4.114-92.64.1	Jan 11, 2018	In the Linux kernel through 4.14.13, the rds_cmsg_atomic function in net/rds/rdma.c mishandles cases where page pinning fails or an invalid address is supplied, leading to an rds_atomic_free_op NULL pointer dereference.
CVE-2018-5332		—	< 4.4.114-92.64.1	4.4.114-92.64.1	Jan 11, 2018	In the Linux kernel through 3.2, the rds_message_alloc_sgs() function does not validate a value that is used during DMA page allocation, leading to a heap-based out-of-bounds write (related to the rds_rdma_extra_size function in net/rds/rdma.c).
CVE-2017-15129		—	< 4.4.114-92.64.1	4.4.114-92.64.1	Jan 9, 2018	A use-after-free vulnerability was found in network namespaces code affecting the Linux kernel before 4.14.11. The function get_net_ns_by_id() in net/core/net_namespace.c does not check for the net::count value after it has found a peer network in netns_ids idr, which could lead
CVE-2017-5754		—	< 4.4.103-92.56.1	4.4.103-92.56.1	Jan 4, 2018	Systems with microprocessors utilizing speculative execution and indirect branch prediction may allow unauthorized disclosure of information to an attacker with local user access via a side-channel analysis of the data cache.
CVE-2017-5753		—	< 4.4.103-92.56.1	4.4.103-92.56.1	Jan 4, 2018	Systems with microprocessors utilizing speculative execution and branch prediction may allow unauthorized disclosure of information to an attacker with local user access via a side-channel analysis.
CVE-2017-5715		—	< 4.4.103-92.56.1	4.4.103-92.56.1	Jan 4, 2018	Systems with microprocessors utilizing speculative execution and indirect branch prediction may allow unauthorized disclosure of information to an attacker with local user access via a side-channel analysis.
CVE-2017-18017		—	< 4.4.114-92.64.1	4.4.114-92.64.1	Jan 3, 2018	The tcpmss_mangle_packet function in net/netfilter/xt_TCPMSS.c in the Linux kernel before 4.11, and 4.9.x before 4.9.36, allows remote attackers to cause a denial of service (use-after-free and memory corruption) or possibly have unspecified other impact by leveraging the presenc
CVE-2017-17975	Med	5.5	< 4.4.120-92.70.1	4.4.120-92.70.1	Dec 30, 2017	Use-after-free in the usbtv_probe function in drivers/media/usb/usbtv/usbtv-core.c in the Linux kernel through 4.14.10 allows attackers to cause a denial of service (system crash) or possibly have unspecified other impact by triggering failure of audio registration, because a kfr
CVE-2017-17864	Low	3.3	< 4.4.114-92.64.1	4.4.114-92.64.1	Dec 27, 2017	kernel/bpf/verifier.c in the Linux kernel through 4.14.8 mishandles states_equal comparisons between the pointer data type and the UNKNOWN_VALUE data type, which allows local users to obtain potentially sensitive address information, aka a "pointer leak."

CVE-2018-1068Mar 16, 2018
affected < 4.4.120-92.70.1fixed 4.4.120-92.70.1
A flaw was found in the Linux 4.x kernel's implementation of 32-bit syscall interface for bridging. This allowed a privileged user to arbitrarily write to a limited range of kernel memory.
CVE-2018-8087Mar 13, 2018
affected < 4.4.120-92.70.1fixed 4.4.120-92.70.1
Memory leak in the hwsim_new_radio_nl function in drivers/net/wireless/mac80211_hwsim.c in the Linux kernel through 4.15.9 allows local users to cause a denial of service (memory consumption) by triggering an out-of-array error case.
CVE-2018-7757Mar 8, 2018
affected < 4.4.121-92.95.1fixed 4.4.121-92.95.1
Memory leak in the sas_smp_get_phy_events function in drivers/scsi/libsas/sas_expander.c in the Linux kernel through 4.15.7 allows local users to cause a denial of service (memory consumption) via many read accesses to files in the /sys/class/sas_phy directory, as demonstrated by
CVE-2017-18208Mar 1, 2018
affected < 4.4.120-92.70.1fixed 4.4.120-92.70.1
The madvise_willneed function in mm/madvise.c in the Linux kernel before 4.14.4 allows local users to cause a denial of service (infinite loop) by triggering use of MADVISE_WILLNEED for a DAX mapping.
CVE-2017-18204Feb 27, 2018
affected < 4.4.121-92.146.1fixed 4.4.121-92.146.1
The ocfs2_setattr function in fs/ocfs2/file.c in the Linux kernel before 4.14.2 allows local users to cause a denial of service (deadlock) via DIO requests.
CVE-2018-7480Feb 25, 2018
affected < 4.4.121-92.95.1fixed 4.4.121-92.95.1
The blkcg_init_queue function in block/blk-cgroup.c in the Linux kernel before 4.11 allows local users to cause a denial of service (double free) or possibly have unspecified other impact by triggering a creation failure.
CVE-2017-18174Feb 11, 2018
affected < 4.4.121-92.109.2fixed 4.4.121-92.109.2
In the Linux kernel before 4.7, the amd_gpio_remove function in drivers/pinctrl/pinctrl-amd.c calls the pinctrl_unregister function, leading to a double free.
CVE-2018-1000026Feb 9, 2018
affected < 4.4.120-92.70.1fixed 4.4.120-92.70.1
Linux Linux kernel version at least v4.8 onwards, probably well before contains a Insufficient input validation vulnerability in bnx2x network card driver that can result in DoS: Network card firmware assertion takes card off-line. This attack appear to be exploitable via An atta
CVE-2017-16913Jan 31, 2018
affected < 4.4.120-92.70.1fixed 4.4.120-92.70.1
The "stub_recv_cmd_submit()" function (drivers/usb/usbip/stub_rx.c) in the Linux Kernel before version 4.14.8, 4.9.71, and 4.4.114 when handling CMD_SUBMIT packets allows attackers to cause a denial of service (arbitrary memory allocation) via a specially crafted USB over IP pack
CVE-2017-16912Jan 31, 2018
affected < 4.4.120-92.70.1fixed 4.4.120-92.70.1
The "get_pipe()" function (drivers/usb/usbip/stub_rx.c) in the Linux Kernel before version 4.14.8, 4.9.71, and 4.4.114 allows attackers to cause a denial of service (out-of-bounds read) via a specially crafted USB over IP packet.
CVE-2018-1000004Jan 16, 2018
affected < 4.4.114-92.64.1fixed 4.4.114-92.64.1
In the Linux kernel 4.12, 3.10, 2.6 and possibly earlier versions a race condition vulnerability exists in the sound system, this can lead to a deadlock and denial of service condition.
CVE-2018-5333Jan 11, 2018
affected < 4.4.114-92.64.1fixed 4.4.114-92.64.1
In the Linux kernel through 4.14.13, the rds_cmsg_atomic function in net/rds/rdma.c mishandles cases where page pinning fails or an invalid address is supplied, leading to an rds_atomic_free_op NULL pointer dereference.
CVE-2018-5332Jan 11, 2018
affected < 4.4.114-92.64.1fixed 4.4.114-92.64.1
In the Linux kernel through 3.2, the rds_message_alloc_sgs() function does not validate a value that is used during DMA page allocation, leading to a heap-based out-of-bounds write (related to the rds_rdma_extra_size function in net/rds/rdma.c).
CVE-2017-15129Jan 9, 2018
affected < 4.4.114-92.64.1fixed 4.4.114-92.64.1
A use-after-free vulnerability was found in network namespaces code affecting the Linux kernel before 4.14.11. The function get_net_ns_by_id() in net/core/net_namespace.c does not check for the net::count value after it has found a peer network in netns_ids idr, which could lead
CVE-2017-5754Jan 4, 2018
affected < 4.4.103-92.56.1fixed 4.4.103-92.56.1
Systems with microprocessors utilizing speculative execution and indirect branch prediction may allow unauthorized disclosure of information to an attacker with local user access via a side-channel analysis of the data cache.
CVE-2017-5753Jan 4, 2018
affected < 4.4.103-92.56.1fixed 4.4.103-92.56.1
Systems with microprocessors utilizing speculative execution and branch prediction may allow unauthorized disclosure of information to an attacker with local user access via a side-channel analysis.
CVE-2017-5715Jan 4, 2018
affected < 4.4.103-92.56.1fixed 4.4.103-92.56.1
Systems with microprocessors utilizing speculative execution and indirect branch prediction may allow unauthorized disclosure of information to an attacker with local user access via a side-channel analysis.
CVE-2017-18017Jan 3, 2018
affected < 4.4.114-92.64.1fixed 4.4.114-92.64.1
The tcpmss_mangle_packet function in net/netfilter/xt_TCPMSS.c in the Linux kernel before 4.11, and 4.9.x before 4.9.36, allows remote attackers to cause a denial of service (use-after-free and memory corruption) or possibly have unspecified other impact by leveraging the presenc
CVE-2017-17975MedDec 30, 2017
affected < 4.4.120-92.70.1fixed 4.4.120-92.70.1
Use-after-free in the usbtv_probe function in drivers/media/usb/usbtv/usbtv-core.c in the Linux kernel through 4.14.10 allows attackers to cause a denial of service (system crash) or possibly have unspecified other impact by triggering failure of audio registration, because a kfr
CVE-2017-17864LowDec 27, 2017
affected < 4.4.114-92.64.1fixed 4.4.114-92.64.1
kernel/bpf/verifier.c in the Linux kernel through 4.14.8 mishandles states_equal comparisons between the pointer data type and the UNKNOWN_VALUE data type, which allows local users to obtain potentially sensitive address information, aka a "pointer leak."

Page 15 of 21